Re: [mod-security-users] Per-Directory Rules?
Brought to you by:
victorhora,
zimmerletw
Menu
▾
▴
Re: [mod-security-users] Per-Directory Rules?
|
From: Russell R. <rus...@gm...> - 2008-11-13 19:36:03
|
"If you want to use ModSecurity rules inside Apache locations, then they should run in Phase 2. Refer to the Apache Request Cycle/ModSecurity Processing Phases diagram." -- http://www.modsecurity.org/documentation/modsecurity-apache/2.1.0/modsecurity2-apache-reference.html On Thu, Nov 13, 2008 at 1:16 PM, Art Age Software <art...@gm...>wrote: > Hi, > > I am trying to whitelist an IP address just for a specific directory, > and it does not seem to work. The apache config looks something like > this: > > <Directory /mydir> > SecRule REMOTE_ADDR "^192\.168\.1\100$" > phase:1,nolog,allow,ctl:ruleEngine=Off > </Directory> > > However, this does not prevent mod-security from processing rules when > the source IP is the one specified in the rule. If I move the rule > directly into the global mod-security rule file, it works. But I only > want the white listing to apply to a single directory. > > Any ideas? > > ------------------------------------------------------------------------- > This SF.Net email is sponsored by the Moblin Your Move Developer's > challenge > Build the coolest Linux based applications with Moblin SDK & win great > prizes > Grand prize is a trip for two to an Open Source event anywhere in the world > http://moblin-contest.org/redirect.php?banner_id=100&url=/ > _______________________________________________ > mod-security-users mailing list > mod...@li... > https://lists.sourceforge.net/lists/listinfo/mod-security-users > |